$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.mft File: 72LxVcGXHVBJQfVx7t-sCvzFKFk.mft (raw, json) Hash identifier: sZThK6pRoJ5sRoYVXlbvhIluT1Aip6/lCh0Rrepwlhc= Subject key identifier: 74:E4:F2:54:E0:7D:C0:7E:BC:E8:C5:09:69:17:E6:1C:A4:86:66:46 Authority key identifier: EF:62:F1:55:C1:97:1D:50:49:41:F5:71:EE:DF:AC:0A:FC:C5:28:59 Certificate issuer: /CN=A91BFE6A/serialNumber=EF62F155C1971D504941F571EEDFAC0AFCC52859 Certificate serial: 1277 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.mft Manifest number: 1256 Signing time: Mon 28 Apr 2025 17:20:28 +0000 Manifest this update: Mon 28 Apr 2025 17:20:28 +0000 Manifest next update: Mon 05 May 2025 17:20:28 +0000 Files and hashes: 1: 72LxVcGXHVBJQfVx7t-sCvzFKFk.crl (hash: uDr9CYBjyAoT83DV4miAmiA+wIVsbuj5tJjmtO0ftBU=) 2: 36AFB016FC6111EEAFBE4719C4F9AE02.roa (hash: CA19srqh0Q6qSkpS5f1WI4ZLZ8befQ3b095HOMVpe8Q=) 3: ED388A1840BB11E9A6718844C4F9AE02.roa (hash: RyCNpZPyi/g+YauzqBs7rDG8vGnkFGaOzI70T5pPGJQ=) 4: CEBECC28D38811E8A763B462C4F9AE02.roa (hash: CyPCkB+xF7/7LV5tDeHmCsATVCTbsm9N+YA32mChPrU=) 5: 5122B56A51F311E9AB54691EC4F9AE02.roa (hash: ulDXXytzKLhDZDPUF/WwhWO/+4HtH6mgUrwehHRDvEU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.crl rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 17:20:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4727 (0x1277) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE6A, serialNumber=EF62F155C1971D504941F571EEDFAC0AFCC52859 Validity Not Before: Apr 28 17:20:28 2025 GMT Not After : May 5 17:20:28 2025 GMT Subject: CN=680fb8dc-4203 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:78:91:60:ac:10:51:7b:d7:c8:1b:35:81:bf: 3b:74:e7:a8:ea:bb:3f:0b:86:22:38:da:ec:d0:28: f6:19:0c:00:48:34:cf:86:02:64:a0:37:71:1a:a3: b9:40:d0:f8:cb:0e:aa:49:74:41:7f:66:48:9d:f5: 5a:6a:57:d7:70:91:ac:eb:4e:4b:eb:f3:d1:2c:f8: 29:60:22:4f:95:6e:04:6a:02:58:10:f6:09:be:a8: 2a:dd:1a:3b:b9:bb:7e:61:22:ec:c9:a4:0b:b3:c3: fe:36:79:43:f0:5a:f4:e2:01:58:83:d7:49:be:df: 33:6e:f2:1b:a3:54:a6:dd:68:fc:03:6f:48:49:18: 5e:7c:70:2f:c9:07:4b:48:95:ba:3d:a8:ce:93:57: b7:fc:21:5e:70:bb:48:ca:f5:fb:a9:a0:49:ec:f2: 9b:cf:25:7a:ae:d8:41:3c:8c:e6:2a:ec:fb:0c:21: 18:4d:33:a2:39:a4:7a:b0:f2:53:fd:32:8b:37:ec: e5:c7:90:fc:e4:af:8f:64:fc:72:f5:a6:c0:e7:2a: ad:9e:c1:e9:63:31:96:80:5b:ba:33:20:69:81:7d: 3e:82:9c:f2:82:86:d1:e3:91:5d:30:d2:47:bb:42: 1e:a7:d0:cb:53:12:15:f2:3e:c7:27:51:2c:31:14: 71:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:E4:F2:54:E0:7D:C0:7E:BC:E8:C5:09:69:17:E6:1C:A4:86:66:46 X509v3 Authority Key Identifier: keyid:EF:62:F1:55:C1:97:1D:50:49:41:F5:71:EE:DF:AC:0A:FC:C5:28:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:7e:eb:9b:36:39:6c:c4:de:0b:4b:e6:cb:1d:54:c7:62:a7: 8a:a0:22:32:2c:ee:99:ae:4f:e4:d3:f6:4d:c5:92:e3:95:d0: d3:f3:b4:87:8c:36:e6:0d:47:6a:8b:80:36:5b:97:ff:ef:ac: 22:de:ea:e2:de:12:d0:fe:d9:c8:ed:33:8f:28:f7:2b:a7:2e: 3c:58:c9:c6:11:ac:ec:03:49:2d:92:2e:35:0a:9f:5e:f7:aa: 73:b7:f7:07:5c:60:f3:e0:fd:49:d5:91:28:49:c4:06:d8:f6: 02:34:96:57:d2:b1:ce:de:84:d3:8f:53:19:c9:c8:a0:4e:81: f5:1a:68:00:e3:83:2b:66:8e:cb:30:4b:ba:b5:17:8e:7d:67: 73:1f:6d:23:da:ed:f6:14:9c:00:ac:e7:0e:d3:7e:7f:a3:b4: 33:38:94:67:26:c9:5c:40:1b:8d:81:b8:f5:de:d5:39:58:13: 7d:41:d6:61:a6:12:82:ce:c0:a8:cd:ab:38:84:60:0b:c4:38: 7e:03:83:2d:db:d4:eb:96:e5:e7:54:4c:d6:dc:80:ea:0a:33: a8:6d:df:48:da:0c:18:9c:c5:5e:95:9e:4e:64:1a:d1:0b:78: 59:0b:d1:23:3f:e3:a9:22:fb:da:68:a0:98:0a:9a:c2:48:eb: 7a:9b:94:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZFNkExMTAvBgNVBAUTKEVGNjJGMTU1QzE5NzFENTA0OTQxRjU3MUVFREZBQzBB RkNDNTI4NTkwHhcNMjUwNDI4MTcyMDI4WhcNMjUwNTA1MTcyMDI4WjAYMRYwFAYD VQQDEw02ODBmYjhkYy00MjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8niRYKwQUXvXyBs1gb87dOeo6rs/C4YiONrs0Cj2GQwASDTPhgJkoDdxGqO5 QND4yw6qSXRBf2ZInfVaalfXcJGs605L6/PRLPgpYCJPlW4EagJYEPYJvqgq3Ro7 ubt+YSLsyaQLs8P+NnlD8Fr04gFYg9dJvt8zbvIbo1Sm3Wj8A29ISRhefHAvyQdL SJW6PajOk1e3/CFecLtIyvX7qaBJ7PKbzyV6rthBPIzmKuz7DCEYTTOiOaR6sPJT /TKLN+zlx5D85K+PZPxy9abA5yqtnsHpYzGWgFu6MyBpgX0+gpzygobR45FdMNJH u0Iep9DLUxIV8j7HJ1EsMRRxvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHTk8lTg fcB+vOjFCWkX5hykhmZGMB8GA1UdIwQYMBaAFO9i8VXBlx1QSUH1ce7frAr8xShZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkU2QS8xRDY0MzI4RUQz ODcxMUU4QkQ3MDc1NUNDNEY5QUUwMi83Mkx4VmNHWEhWQkpRZlZ4N3Qtc0N2ekZL RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyTHhWY0dYSFZCSlFmVng3dC1zQ3Z6RktGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RkU2QS8xRDY0MzI4RUQzODcxMUU4QkQ3MDc1NUNDNEY5QUUwMi83Mkx4VmNHWEhW QkpRZlZ4N3Qtc0N2ekZLRmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBefuubNjlsxN4LS+bLHVTHYqeKoCIyLO6Zrk/k0/ZNxZLjldDT87SH jDbmDUdqi4A2W5f/76wi3uri3hLQ/tnI7TOPKPcrpy48WMnGEazsA0ktki41Cp9e 96pzt/cHXGDz4P1J1ZEoScQG2PYCNJZX0rHO3oTTj1MZycigToH1GmgA44MrZo7L MEu6tReOfWdzH20j2u32FJwArOcO035/o7QzOJRnJslcQBuNgbj13tU5WBN9QdZh phKCzsCozas4hGALxDh+A4Mt29TrluXnVEzW3IDqCjOobd9I2gwYnMVelZ5OZBrR C3hZC9EjP+OpIvvaaKCYCprCSOt6m5St -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:56 2025 by rpki-client on console.sobornost.net